$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: AYYUdtysKEqyIt2mQ+ZDGsBve3zmfwdtB/Itt2XyTRg= Subject key identifier: D7:47:98:34:12:5E:08:F5:41:5C:CD:AC:C0:6C:CE:8E:46:9C:ED:A3 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 3419 Signing time: Sat 04 May 2024 15:21:08 +0000 Manifest this update: Sat 04 May 2024 15:21:07 +0000 Manifest next update: Sat 11 May 2024 15:21:07 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: 0Ipc7f9pEC+xc/UwO42GdeFbAD2gQCuIAz18xya+7TE=) 2: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: xpjctOic9ALUbvMpVasWFZFNE3OfU+88qrN9oKY4+Dw=) 3: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: 5S03I75+hNJBuUJ5fNzxs9YO5CLy34Di8bLlb2dNGpY=) 4: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: GdpPqk3j46qrhM/D3Q+zjZqlqm9OzVhbyylENAX11Ng=) 5: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 5arC7pafcKh/AcWsnn6ZMn4yInbZRBna+RKiehfd8iA=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: LZzUQOcRmtmL+1vVju87h7++WY3DSavtT2Wpvh36ohE=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: syWvSLG7GaKla/rfCIba4Fb9KHufM9emZCvug3k1Tm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13432 (0x3478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: May 4 15:21:07 2024 GMT Not After : May 11 15:21:07 2024 GMT Subject: CN=66365264-8d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2c:7f:a4:59:e7:2c:ec:1b:07:dd:76:35:db: b2:35:ca:d5:38:29:13:fe:07:0c:1b:56:78:17:0c: 99:ff:5b:5e:74:7d:40:16:b9:21:fb:12:60:88:2c: b4:01:f9:e9:ee:6d:fa:d3:cb:47:a5:a0:0d:cc:70: db:67:ee:a0:81:ce:b1:1d:be:4c:68:41:cd:80:5e: e2:87:f2:8f:8a:a4:5e:f2:10:48:25:0a:54:ee:95: 0e:27:bb:01:40:33:d5:b4:88:f8:75:85:da:fc:02: 6a:d0:ca:0d:1d:7e:4f:f0:f7:e0:9c:d7:73:1e:60: a8:e2:23:b6:12:ec:79:30:de:95:e5:8d:47:b4:b4: 89:0a:e9:5b:8c:d0:7c:ed:2d:69:a1:c8:87:67:b3: 42:70:b4:a5:25:75:78:3c:32:0e:73:5b:d4:69:93: 95:1a:5e:98:e5:ad:72:e5:cd:9a:7a:25:43:ef:1a: 88:ce:d6:5b:bc:02:80:69:17:cb:88:a1:43:2e:66: d9:83:72:80:3f:4a:3d:f2:82:b5:2d:4f:e1:c8:9d: be:bd:01:c2:01:47:20:c3:fc:cd:f7:41:a5:69:cb: 72:72:32:75:0f:82:33:d4:9f:48:e6:69:ff:e0:4b: b0:19:f9:3c:41:c7:f5:60:c3:21:83:09:22:d2:47: ca:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:47:98:34:12:5E:08:F5:41:5C:CD:AC:C0:6C:CE:8E:46:9C:ED:A3 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:e1:af:55:d8:be:2d:77:df:08:b0:91:f9:97:05:87:c4:b0: 9c:9d:1b:09:58:40:e0:e6:02:48:8f:3c:0c:ab:f2:a1:cb:82: ec:7d:ff:90:01:bd:a4:f9:8e:9b:2f:03:71:30:bd:2f:02:34: bd:68:96:30:2e:a7:3e:37:6f:6a:08:15:36:07:53:d3:9c:25: ed:e8:3d:09:1c:bf:33:3a:4f:c7:3a:1b:20:df:1e:12:82:67: 24:88:3d:3a:b9:4e:e7:24:65:dd:a3:9d:31:da:3f:92:6d:64: 8c:b5:3e:eb:2c:09:45:b9:85:f9:be:bf:3a:cf:01:8e:38:27: 26:56:fd:e2:8d:63:a7:e2:be:df:e3:dc:5f:81:08:d4:b7:a8: 18:c2:49:3c:36:27:c1:7b:e7:0c:9b:bb:fe:15:06:ca:7f:4c: 8d:1a:2b:f1:ca:4b:66:41:70:5d:e5:14:2e:d5:cd:ef:df:96: 06:2f:23:1a:e5:4b:9b:c5:08:46:d0:3f:6b:5d:d9:8f:6f:3c: 16:0d:ad:b2:d3:46:29:c3:0d:f3:2c:32:fc:4d:a3:ad:df:62: 89:b2:fd:d9:82:71:fb:94:99:8e:5e:83:a7:28:15:67:28:2a: cc:73:bf:a2:f8:9f:cd:9b:e0:43:5e:94:08:bd:b0:6a:32:c4: d4:be:cf:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjQwNTA0MTUyMTA3WhcNMjQwNTExMTUyMTA3WjAYMRYwFAYD VQQDEw02NjM2NTI2NC04ZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSx/pFnnLOwbB912NduyNcrVOCkT/gcMG1Z4FwyZ/1tedH1AFrkh+xJgiCy0 Afnp7m3608tHpaANzHDbZ+6ggc6xHb5MaEHNgF7ih/KPiqRe8hBIJQpU7pUOJ7sB QDPVtIj4dYXa/AJq0MoNHX5P8PfgnNdzHmCo4iO2Eux5MN6V5Y1HtLSJCulbjNB8 7S1pociHZ7NCcLSlJXV4PDIOc1vUaZOVGl6Y5a1y5c2aeiVD7xqIztZbvAKAaRfL iKFDLmbZg3KAP0o98oK1LU/hyJ2+vQHCAUcgw/zN90GlactycjJ1D4Iz1J9I5mn/ 4EuwGfk8Qcf1YMMhgwki0kfKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdHmDQS Xgj1QVzNrMBszo5GnO2jMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB4a9V2L4td98IsJH5lwWHxLCcnRsJWEDg5gJIjzwMq/Khy4Lsff+Q Ab2k+Y6bLwNxML0vAjS9aJYwLqc+N29qCBU2B1PTnCXt6D0JHL8zOk/HOhsg3x4S gmckiD06uU7nJGXdo50x2j+SbWSMtT7rLAlFuYX5vr86zwGOOCcmVv3ijWOn4r7f 49xfgQjUt6gYwkk8NifBe+cMm7v+FQbKf0yNGivxyktmQXBd5RQu1c3v35YGLyMa 5UubxQhG0D9rXdmPbzwWDa2y00Ypww3zLDL8TaOt32KJsv3ZgnH7lJmOXoOnKBVn KCrMc7+i+J/Nm+BDXpQIvbBqMsTUvs+c -----END CERTIFICATE-----Generated at Sat May 4 16:34:32 2024 by rpki-client on console-fra.rpki-client.org